Arbitrary Email Spoofing and Modification in SecurEnvoy SecurMail

Arbitrary Email Spoofing and Modification in SecurEnvoy SecurMail

CVE-2018-7702 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:P/A:N

SecurEnvoy SecurMail before 9.2.501 allows remote attackers to spoof transmission of arbitrary e-mail messages, resend e-mail messages to arbitrary recipients, or modify arbitrary message bodies and attachments by leveraging missing authentication and authorization.

Learn more about our Web Application Penetration Testing UK.